Privacy Policy
Last modified: October 1, 2024
Last updated: October 1, 2024
This Privacy Policy outlines how the services provided by Churo Corporation d.b.a. Churo ("Churo", "we," "our," or "us") collect, use, disclose, and safeguard your ("user", “visitor”, “client”, “prospect”) personal information when you use the Churo mobile app, website, and related products (collectively, the "Services"). We are deeply committed to protecting your privacy and ensuring compliance with U.S. federal and state privacy laws.
§1 Personal information we collect
We collect different types of information to provide and improve our services:
| Data source | Data category | What we collect | Data retention |
| Automatic | Usage information |
| Visitors, prospects Up to 60 days, or otherwise noted Data is retained for up to 365 days after the contractual relationship with Churo has ended. |
| Automatic | Cookies and tracking technologies | We use cookies, web beacons, and similar technologies to track your activity on our websites and apps to improve your experience. You may manage your cookie preferences through your browser settings. A list of the providers for these technologies and their respective privacy policies can be found in Section 9. | Visitors, prospects Up to 60 days, or otherwise noted Data is retained for up to 365 days after the contractual relationship with Churo has ended. |
| User-provided | Personal Identifiable Information (PII) |
| Visitors, prospects Up to 60 days, or otherwise noted Data is retained for up to 365 days after the contractual relationship with Churo has ended. |
| User-provided | Account information | Churo Account
| Users, clients Data is retained for up to 365 days after the contractual relationship with Churo has ended. |
| User-provided | Business information |
| For prospects Data is retained for up to 365 days after the contractual relationship with Churo has ended. |
| User-provided and third-parties (e.g. credit reporting agencies) | Financial information |
| Users, clients Data is retained for up to 365 days after the contractual relationship with Churo has ended. |
| User-provided and third-parties (e.g. online services) | Other types of business information |
| Users, clients Data is retained until the user revokes permission, or other circumstances arise (e.g. end of contractual relationship) |
| User-provided and third-parties (e.g. CRM software, credit reporting agencies) | Information about clients, visitors and prospects of the business |
| Users, clients Data is stored until the user revokes permission, or until other circumstances arise (e.g. end of contractual relationship), or the third-party opts out of data processing through Churo. |
| User-provided | Other information |
| Users, clients Data is stored until the user revokes permission, or until other circumstances arise (e.g. end of contractual relationship) |
| Third-parties | Other information | We may receive information from third-parties, such as analytics platforms, ad networks, business partners, and credit reporting agencies, in accordance with their respective privacy policies. | Visitors, prospects Up to 60 days, or otherwise noted Data is stored for 365 days (or otherwise noted) after the end of the contractual relationship. |
§2 How we use your information
We use your information for the following purposes:
- Service provision: To operate, maintain, and provide our services and products.
- Soft credit reports: As part of our services, we may obtain soft business credit reports from Experian, Dun & Bradstreet, and LexisNexis to verify your identity, assess your business's financial standing and help you improve certain factors with suggestions and helpful insights. These inquiries do not affect the credit worthiness of your business.
- Personalization: To tailor content, features, suggestions, and notifications to your personal preferences based on your usage of our services.
- Data improvement: To train and improve our AI models by analyzing user-provided data and interactions. The data we use for that purpose is either anonymous, or replaced with substituted information.
- Communication: To send you important updates, security alerts, promotional materials, or service-related notifications. You can opt out of promotional emails at any time.
- Compliance: To ensure we comply with applicable laws, regulations, and industry standards. We do comply with subpoenas and requests from U.S. federal law enforcement authorities, as long as a valid court request is presented that orders us to disclose the requested information. We will notify the user after any data is disclosed to federal law enforcement agencies, or courts of law.
§3 Data retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law. Upon request, we will delete, substitute, or anonymize your data in accordance with applicable legal requirements. You can find our specific data retention policies and durations in Section 1 of this policy.
§4 Your data rights (California residents only)
As a resident of California, you have specific rights under the California Consumer Privacy Act (CCPA):
- Right to Access: You have the right to always request information about the categories and specific pieces of personal information we collect, use, and disclose about you.
- Right to Correct: You have the right to always correct any information we have stored about you and your business, if the information we have stored is outdated, wrong, or has to be altered for any other reason.
- Right to Deletion: You can request the deletion of your personal information at any given time, subject to certain legal exceptions.
- Right to Opt-Out of Sale: Although we do NOT sell your personal information, you have the right to opt out of any future disclosures (based on selling data) should our practices change. These policies have to be communicated with you at least 60 days before they take effect.
- Non-Discrimination: You will not be discriminated against for exercising your individual privacy rights.
To exercise any of these rights, please contact us. You can find our contact information in Section 16.
§5 Data security
Churo implements a variety of highly-sophisticated security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, and secure data storage/transmission practices. However, no method of electronic data transmission over the internet is 100% secure, and we cannot guarantee absolute security.
We utilize products and services provided by the following third-parties to improve the safety and integrity of our services:
| Provider name | Reason | Privacy Policy | Contact information |
| Check Point Software Technologies, Inc. Perimeter 81 Ltd. | Enhanced Network, Access control and Platform Security measures | https://www.checkpoint.com/privacy/ | Check Point Software Technologies, Inc. Redwood City, CA 94065 |
| Cloudflare Inc. | Enhanced Network, Access control and Platform Security measures | https://www.cloudflare.com/privacypolicy | 101 Townsend St, San Francisco, CA 94107 |
| IBM Security | Consulting, IT security audits, penetration testing, support services in IT security regulations, Threat detection and mitigation services | https://www.ibm.com/us-en/privacy | 1 New Orchard Road, Armonk, New York, 10504 |
§6 Data storage
We store personal information on U.S.-operated servers located within the continental United States.
In some cases, we might also store personal information on foreign servers within the European Union (EU).
We store your personal information exclusively on servers provided by these companies:
| Provider name | Types of stored information | Privacy Policy | Contact information |
| Microsoft Inc. | Various data | https://azure.microsoft.com/en-us/explore/trusted-cloud/privacy | One Microsoft Way, Redmond, Washington 98052 |
| Google LLC | Various data | https://cloud.google.com/terms/cloud-privacy-notice | 1600 Amphitheatre Parkway. Mountain View, CA 94043 |
| Cloudflare Inc. | CDN content, certificates | https://www.cloudflare.com/privacypolicy | 101 Townsend St, San Francisco, CA 94107 |
| IBM Cloud | Various data | https://www.ibm.com/us-en/privacy | 1 New Orchard Road, Armonk, New York, 10504 |
| Amazon Web Services, Inc. | Various data | https://aws.amazon.com/privacy/ | 410 Terry Ave North, Seattle, WA 98109-5210 |
| Raidboxes GmbH | Various data | https://raidboxes.io/en/legal/privacy/ | Hafenstrasse 32 48153 Muenster, Germany |
§7 AI ethics and data handling
As part of our commitment to ethical AI practices:
- Minimization of Bias: We strive to ensure that our AI models are trained on diverse datasets and actively work to minimize bias. However, AI-generated outputs may still be affected by data limitations.
- Transparency: We provide information about how our AI models operate and the types of data used to train them. You are encouraged to critically evaluate the AI-generated insights before making business decisions.
- Ethical Use: We will NEVER use your data for unethical purposes, such as discriminatory profiling, manipulation, or exploitation.
- Privacy: We will NEVER include your Personal Identifiable Information (PII) in the data we use to train and improve our AI models. Any data we use is either completely anonymous, or heavily substituted to a point where no person or algorithm can trace this data back to the source.
We're using third-party AI models and services from the following companies:
| Provider name | Model(s) used | Privacy Policy | Contact information |
| OpenAI LLC | ChatGPT, DALL-E, API | https://privacy.openai.com/ | 3180 18th Street, San Francisco, CA |
| Google LLC | Gemini, API | https://cloud.google.com/terms/cloud-privacy-notice | 1600 Amphitheatre Parkway. Mountain View, CA 94043 |
| Anthropic PBC | Claude, API | https://support.anthropic.com/en/collections/4078534-privacy-legal | 548 Market Street. PMB 90375. San Francisco, CA 94104-5401 |
| IBM | Watson, API | https://www.ibm.com/us-en/privacy | 1 New Orchard Road, Armonk, New York, 10504 |
§8 Cookies and the use of tracking technologies
To enhance your experience and improve our services, we use cookies, web beacons, and similar tracking technologies on our website and apps. These technologies collect information about your browsing activity and interactions with our services. The following trackers may be employed:
- Google Analytics: Used to collect data on user behavior, including page visits, session durations, and traffic sources.
- Google Tag Manager: Facilitates the deployment of tracking tags and monitors their performance.
- Facebook Pixel: Tracks user interactions for ad targeting and campaign performance.
- WordPress Jetpack (Automattic Inc.): Tracks visitor behavior for website analytics and performance enhancements.
How We Use Tracking Technologies:
- Personalization: Customize content and features based on your preferences.
- Performance: Analyze website functionality and identify improvement areas.
- Marketing: Track campaign efficiency and tailor advertising strategies.
Your Control Over Cookies:
You may manage or disable cookies through your browser settings. Please note that disabling cookies may affect your ability to use certain features of our services.
§9 Third-party services
We utilize the following services and products of third-parties to provide the basic functionality of our services:
| Provider name | Reason | Privacy Policy | Contact information |
| Okta, Inc. | Secure Authentication and data storage to provide Churo account functionality | https://www.okta.com/privacy-policy/ | Okta, Inc. (including its subsidiary, Auth0, Inc.) ATTN: Okta Data Protection Officer 100 First Street, Floor 6 San Francisco, CA 94105 USA |
| Copilot Platforms Inc. | Providing the client portal | https://www.copilot.com/legal/privacy-policy | [email protected] |
| Google LLC [Google Analytics] | Gathering, comparing and processing analytic information | https://support.google.com/analytics/answer/7318509?hl=en | 1600 Amphitheatre Parkway. Mountain View, CA 94043 |
| Keap | Managing client and visitor information | https://keap.com/legal/privacy-policy | 1260 S. Spectrum Boulevard, Chandler, AZ 85286 |
| Meta Platforms Inc. [Pixel] | Gathering, comparing and processing analytic information | https://www.facebook.com/privacy/policy | 1601 Willow Road Menlo Park, CA 94025 |
| Automattic Inc. [Jetpack] | Gathering, comparing and processing analytic information | https://jetpack.com/support/privacy/ | 60 29th Street #343 San Francisco, CA 94110 |
| Zapier | Implementation of third-party services into Churo services and products | https://zapier.com/legal/data-privacy | Zapier, Inc. Attn: Legal Department/Privacy 548 Market St. #62411, San Francisco, CA 94104-5401 Attn: Legal |
We have concluded Data Processing Addendums (DPAs) and other agreements with the involved third-parties to protect your information.
§10 Churo Account
It is required to sign up for a Churo online account in order to use some of the services we provide to you (notably, the Churo mobile app). The provisions of this privacy policy will apply without any exception, including data collection and retention policies. You can request the deletion of your account and any affiliated personal information by terminating the account. You have the right to close your Churo online account at any given time.
§11 Credit reports
As part of providing some of our services, we may obtain credit reports from the following credit reporting agencies:
| Credit Reporting Agency | Reason | Privacy Policy | Contact information |
| Experian | We may obtain a soft credit report for your business to verify your identity, evaluate the financial situation of your business and provide you with helpful insights about the credit ratings of your business. These inquiries will not affect your creditworthiness. | https://www.experian.com/privacy/#businesspolicies | Experian 475 Anton Blvd. Costa Mesa, CA 92626 Phone: 1-888-397-3742 |
| Dun and Bradstreet | We may obtain a soft credit report for your business to verify your identity, evaluate the financial situation of your business and provide you with helpful insights about the credit ratings of your business. These inquiries will not impact your creditworthiness. | https://www.dnb.com/about-us/data-transparency.html | Dun & Bradstreet 5335 Gate Parkway Jacksonville, FL 32256 Phone: 1-800-234-3867 |
| LexisNexis Risk Solutions | We may obtain a soft credit report for your business to verify your identity and evaluate risks in your business relationship with Churo. | https://risk.lexisnexis.com/corporate/privacy-policy | LexisNexis 1000 Alderman Dr. Alpharetta, GA 30005 Phone: 1-888-497-0011 |
These soft credit inquiries are conducted solely for the purpose of evaluating business credit and do not impact your credit score or appear on credit reports accessible by others. We request these credit inquiries under the identifiers “CHUROC”, “CHURO CORP.”, “CHUCBI”
Before obtaining these reports, we always explicitly ask for your consent.
§12 Children
Our services are not intended for children under the age of 18, and we do not knowingly collect personal information from children. If we learn that we have collected such information, we will take steps to immediately delete that information.
§13 International Data Transmission
If you access the App from outside the United States, please note that your information may be transferred to, stored, and processed in the United States, and/or the European Union. By using our services, you consent to the transfer of your data to the U.S. and/or EU in accordance with this Privacy Policy. We do not render our services to businesses or individuals outside the United States. If you access and use our services while being outside the United States, or a resident of a third-country, Churo Corporation cannot assume any responsibility.
§14 External Links
Our websites and services may contain links to third-party websites or services that are not operated by us. We are not responsible for the data protection practices or content of those third-party websites. We encourage you to review the privacy policies of any third-party services you interact with. Most external links are marked with this, or a similar icon: [↗]
§15 Updates to this privacy policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal obligations. When we make changes, we will update the "Last Updated" date at the top of the policy and notify you of significant changes through email or within our websites or services.
§16 Contact information
If you have any questions or concerns about this Privacy Policy, or if you would like to exercise any of your rights under applicable privacy laws, please contact our appointed compliance counsel:
Churo Corporation
5000 Centregreen Way #500
Cary, NC 27513
Email: [email protected]
Phone: (919) 500-7295
Alternatively, you may contact our compliance counsel using this form:
Concerned about your data?
We're here to help!
Please only use this form for privacy-related questions and concerns. For everything else, contact us here.
Email: [email protected]
Phone: (919) 500-7295